I see that other people have recently started getting the same errors and it was suggested that the ‘http:’ protocol be removed from the API calls. I tried this and those errors went away, but the following error then crops up:

An iframe which has both allow-scripts and allow-same-origin for its sandbox attribute can remove its sandboxing.

Do I understand correctly that the the original errors are due to making http: calls over an https: connection? So if the page were hosted somewhere other than codepen that was reached through http the errors would go away? Otherwise, we have to make sure that all API calls and other external links need to be made through https and not http? Since it is Free Code Camp that is directing us to use sites reached through http it seems that they should locate other sites that will work with https and update their project pages.